werasik2aa
commented
1 year ago You have time for test unlock for this phone? If i found the board firmware...
Closed derivativeoflog7 closed 6 months ago
werasik2aa
commented
1 year ago You have time for test unlock for this phone? If i found the board firmware...
derivativeoflog7
commented
1 year ago Nope... But I do know it's possible to get root by downgrading to K and using exploits
werasik2aa
commented
1 year ago You know how to root it hmmm. So i think huawei don't have big protection... But https://androidhost.ru/7Da
If board firmware has fastboot unlocked loader ... the downgrading not required
derivativeoflog7
commented
1 year ago Well 4.4.4 is really old by now, 5 is also technically compatible with dirtycow but I can't get a root shell with it
derivativeoflog7
commented
1 year ago You know how to root it hmmm. So i think huawei don't have big protection... But https://androidhost.ru/7Da
Yes! I tried taking a look at the source and the files that are downloaded for QC unlocks, and try to compare it with that board software, but couldn't get much out of it
werasik2aa
commented
1 year ago If this firmware which given to you match with your device, try to upload aboot.mbn, sbl1.mbn Or emmc appsboot.mbn as aboot to phone by edl9008
Sorry, but let's continue tomorrow because i have time close to night ...
derivativeoflog7
commented
1 year ago If this firmware which given to you match with your device, try to upload aboot.mbn, sbl1.mbn Or emmc appsboot.mbn as aboot to phone by edl9008
How can I do that? I tried toying with edl, on Windows I can't get it to work at all, I tried with the live ISO and it launches, but after uploading the loader I either get no output or errors like USB Overflow (I even tried using the G7 loader from this project but nada)
Right now I'm making a backup of the flash using this program
derivativeoflog7
commented
1 year ago OK I figured out how to write the images... and the phone now boots straight to fastboot mode. What now?
werasik2aa
commented
1 year ago Sorry for long answer. Test the fastboot command ->fastboot flash boot some.img<- if it will be fleshed the fastboot i think should be unlocked... if not you need to flash the backup
derivativeoflog7
commented
1 year ago Nope... not unlocked fastboot flash gives command not allowed, and if I try to flash a custom recovery via TWRP it refuses to boot it.
I was wondering, since we can read/write apparently the whole flash via edl, how difficult would it be to do something like PotatoNV, overwriting the unlock code with our own?
werasik2aa
commented
1 year ago there's no function in function list of aboot's fastboot... about rewrite code
derivativeoflog7
commented
1 year ago there's no function in function list of aboot's fastboot... about rewrite code
But since we have r/w access to the whole flash, couldn't we just overwrite it that way? Unless it's not calculated on the fly or something I'm just throwing ideas, unfortunately I don't know anything about REing code
werasik2aa
commented
1 year ago Try to use gpt reader. I mean partitions read... Try find nvme or oeminfo maybe inside should be code. 4.4 has old aboot i think
werasik2aa
commented
7 months ago But since we have r/w access to the whole flash, couldn't we just overwrite it that way? Unless it's not calculated on the fly or something I'm just throwing ideas, unfortunately I don't know anything about REing code
it's possible to rewrite key, but need to use huawei certs for that. Same for all phones
werasik2aa
commented
7 months ago I don't wan't to bring here root methods to this tool. Maybe it's will be soon. But not today. For many devices needs an unlocked bootloader. For old devices need a root methods
werasik2aa
commented
6 months ago Added
werasik2aa
commented
6 months ago I think should work
werasik2aa
commented
6 months ago werasik2aa
commented
6 months ago Closed here, not inside
I currently own one of those and I'd be glad to help